PHPDeveloper.org: Metapundit.net: Code Smells II

	News Feed
	Jobs Feed

Sections

Tutorials

Books

Events

Talks

Jobs

News Archive

Anna Filina: Full Test Coverage is Impractical

ZFort Group: The Battle of the Titans. Zend vs. Symfony

Lorna Mitchell: Simplest PHP Generator Example

Engine Yard: A Conversation About Testing in PHP

Community News: Packagist Latest Releases for 05.23.2013

Site News: Blast from the Past - One Year Ago in PHP

Reddit.com: Preferred framework for REST usage?

PHPMaster.com: Openbiz Cubi: A Robust PHP Application Framework, Part 2

PHPClasses.org: 5 Reasons Why the Web Platform War is Over: PHP Won with 75% says Google

Community News: Packagist Latest Releases for 05.22.2013

Metapundit.net:
Code Smells II

by Chris Cornutt October 26, 2006 @ 09:14:00

Following up from the previous article on the Metapundit.net blog, there's part two of the "Code Smells" series - a look at bad things to do in your code (to make it "smell").

This (and any subsequent posts in the series) will be more limited in scope - a single bad example and a corresponding solution.

This time, the spotlight is on parameterised queries - inserting the variables directly into a SQL statement string versus filtering them or inserting them via a custom query() function. He points out that there's no need to create this kind of filtering/database handling class on your own, though - there's already been one created by the fine folks of PEAR (using the autoExecute function

0 comments voice your opinion now!
smell parameterised queries sql validation filtering smell parameterised queries sql validation filtering

blog comments powered by Disqus

Similar Posts

Chris Roane's Blog: Advanced PHP Form Validation

Maarten Balliauw: Working with Windows Azure SQL Database in PhpStorm

Seth May's Blog: The 5 Ws of Data Validation - Part 1

FrSIRT: Vivvo Article Management CMS SQL Injection and PHP File Inclusion Vulnerabilities

Zend Developer Zone: The ZendCon Sessions Episode 17: SQL Query Tuning: The Legend of Drunken Query

Community Events

Don't see your event here?
Let us know!

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework